Kerberos ssh auth in debian?
Кто-нибудь делал? Опишите что нужно настроить? Тикет получил, но когда пытаюсь подключиться: debug1: Authentications that can continue: gssapi-keyex,gssapi-with-mic,password debug3: start over, passed a different list gssapi-keyex,gssapi-with-mic,password debug3: preferred gssapi-keyex,gssapi-with-mic,gssapi,publickey,keyboard-interactive,password debug3: authmethod_lookup gssapi-keyex debug3: remaining preferred: gssapi-with-mic,gssapi,publickey,keyboard-interactive,password debug3: authmethod_is_enabled gssapi-keyex debug1: Next authentication method: gssapi-keyex debug1: No valid Key exchange context debug2: we did not send a packet, disable method debug3: authmethod_lookup gssapi-with-mic debug3: remaining preferred: gssapi,publickey,keyboard-interactive,password debug3: authmethod_is_enabled gssapi-with-mic debug1: Next authentication method: gssapi-with-mic debug1: Unspecified GSS failure. Minor code may provide more information Server not found in Kerberos database debug1: Unspecified GSS failure. Minor code may provide more information Server not found in Kerberos database debug1: Unspecified GSS failure. Minor code may provide more information debug2: we did not send a packet, disable method debug3: authmethod_lookup password debug3: remaining preferred: ,publickey,keyboard-interactive,password debug3: authmethod_is_enabled password debug1: Next authentication method: password a...@beta's password: Почему Server not found in Kerberos database? -- To UNSUBSCRIBE, email to debian-russian-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Kerberos ssh auth in debian?
On Wed, 13 Jan 2010 09:57:19 +0300 "Korona Auto Ltd./ Andrey N. Prokofiev" wrote: > Кто-нибудь делал? я делал > Опишите что нужно настроить? Тикет получил, а тикет сервера sshd знает? > но когда > пытаюсь подключиться: > > debug1: Authentications that can continue: > gssapi-keyex,gssapi-with-mic,password > debug3: start over, passed a different list > gssapi-keyex,gssapi-with-mic,password > debug3: preferred > gssapi-keyex,gssapi-with-mic,gssapi,publickey,keyboard-interactive,password > debug3: authmethod_lookup gssapi-keyex > debug3: remaining preferred: > gssapi-with-mic,gssapi,publickey,keyboard-interactive,password > debug3: authmethod_is_enabled gssapi-keyex > debug1: Next authentication method: gssapi-keyex > debug1: No valid Key exchange context > debug2: we did not send a packet, disable method > debug3: authmethod_lookup gssapi-with-mic > debug3: remaining preferred: > gssapi,publickey,keyboard-interactive,password debug3: > authmethod_is_enabled gssapi-with-mic debug1: Next authentication > method: gssapi-with-mic debug1: Unspecified GSS failure. Minor code > may provide more information Server not found in Kerberos database > > debug1: Unspecified GSS failure. Minor code may provide more > information Server not found in Kerberos database > > debug1: Unspecified GSS failure. Minor code may provide more > information > > > debug2: we did not send a packet, disable method > debug3: authmethod_lookup password > debug3: remaining preferred: ,publickey,keyboard-interactive,password > debug3: authmethod_is_enabled password > debug1: Next authentication method: password > a...@beta's password: > > > Почему Server not found in Kerberos database? > > вот мои настройки sshd.conf: # GSSAPI GSSAPIAuthentication yes # To change Kerberos options KerberosAuthentication yes #KerberosOrLocalPasswd no #AFSTokenPassing no #KerberosTicketCleanup no # Kerberos TGT Passing does only work with the AFS kaserver #KerberosTgtPassing yes signature.asc Description: PGP signature
Re: Kerberos ssh auth in debian?
On Wed, 13 Jan 2010 16:20:41 +0700 Denis Feklushkin wrote: > On Wed, 13 Jan 2010 09:57:19 +0300 > "Korona Auto Ltd./ Andrey N. Prokofiev" wrote: > > > Кто-нибудь делал? > > я делал > > > Опишите что нужно настроить? Тикет получил, > > а тикет сервера sshd знает? это я гоню... :) signature.asc Description: PGP signature
Re: Kerberos ssh auth in debian?
On Wed, 13 Jan 2010 09:57:19 +0300 "Korona Auto Ltd./ Andrey N. Prokofiev" wrote: > Кто-нибудь делал? Опишите что нужно настроить? попробуйте ещё в конфиге клиента отключить GSSAPI: #GSSAPIAuthentication yes signature.asc Description: PGP signature
Re: Kerberos ssh auth in debian?
Korona Auto Ltd./ Andrey N. Prokofiev пишет: > Кто-нибудь делал? Опишите что нужно настроить? Тикет получил, но когда > пытаюсь подключиться: > > debug1: Authentications that can continue: > gssapi-keyex,gssapi-with-mic,password > debug3: start over, passed a different list > gssapi-keyex,gssapi-with-mic,password > debug3: preferred > gssapi-keyex,gssapi-with-mic,gssapi,publickey,keyboard-interactive,password > debug3: authmethod_lookup gssapi-keyex > debug3: remaining preferred: > gssapi-with-mic,gssapi,publickey,keyboard-interactive,password > debug3: authmethod_is_enabled gssapi-keyex > debug1: Next authentication method: gssapi-keyex > debug1: No valid Key exchange context > debug2: we did not send a packet, disable method > debug3: authmethod_lookup gssapi-with-mic > debug3: remaining preferred: gssapi,publickey,keyboard-interactive,password > debug3: authmethod_is_enabled gssapi-with-mic > debug1: Next authentication method: gssapi-with-mic > debug1: Unspecified GSS failure. Minor code may provide more information > Server not found in Kerberos database > > debug1: Unspecified GSS failure. Minor code may provide more information > Server not found in Kerberos database > > debug1: Unspecified GSS failure. Minor code may provide more information > > > debug2: we did not send a packet, disable method > debug3: authmethod_lookup password > debug3: remaining preferred: ,publickey,keyboard-interactive,password > debug3: authmethod_is_enabled password > debug1: Next authentication method: password > a...@beta's password: > > > Почему Server not found in Kerberos database? > > > Эм...настроил аналогично, но не помогает. Ради теста пытаюсь коннектиться на ту же машину: ... debug1: Authentications that can continue: gssapi-keyex,gssapi-with-mic,password debug3: start over, passed a different list gssapi-keyex,gssapi-with-mic,password debug3: preferred publickey,keyboard-interactive,password debug3: authmethod_lookup password debug3: remaining preferred: ,keyboard-interactive,password debug3: authmethod_is_enabled password debug1: Next authentication method: password Как продиагностировать? -- To UNSUBSCRIBE, email to debian-russian-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
